You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Register a free account to unlock additional features at BleepingComputer.com

Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

I've been downloading a lot of media content with uTorrent. I'm very careful and generally able to detect false content, and I'm running the free version of Avast! but I still managed to get a virus. I started getting "You are infected" type messages that were not coming from my antivirus software prompting me to "run a scan" and, I'm sure, eventually asking for a credit card number to download some "antivirus" program that I don't want or need. I'm already running the free version of Avast! I was unable to open media players, task manager, add/remove programs, etc. Each time I got a "cannot open - the file is infected" sort of message.

I programmed a really thorough Avast scan and it found:

Win32:Hupigon-ONX [Trj]

Win32:Malware-gen

I'm sorry to say that MWB found nothing and neither did Spybot. I had Avast delete the infected files, but I'm still seeing some buggy behaviour.

Your help would be very much appreciated!~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.We need to create an OTL Report

In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards myrti

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM!Please don't send help request via PM, unless I am already helping you. Use the forums!

This has been difficult due to browser problems related to this infection (I'm guessing). Whenever I try to post a reply, I get stuck on "loading, please wait..." Is this because I'm in safe mode? After 5 minutes or so I reload the page and find that only part of my message got posted. I tried splitting it up over several posts but every time, less and less of my message was posted. Very strange.

Anyway, in the end, I'm having to attach the reports to this post, rather than copy & paste them. I will then go in and edit the other posts to say "please ignore", since I don't believe I'm allowed to delete them. Sorry about that. The OTL.TXT and Extras.TXT reports are attached.

Temporarily disable isable your AntiVirus and AntiSpyware applications. They may otherwise interfere with our toolsUsually this can be done via a right click on the System Tray icon, check this tutorial for disabling the most common security programs: Link

Double click on ComboFix.exe & follow the prompts.

As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

I just wanted to let you know that I will be away from this computer from 8/12 to 8/18. I'm sorry about this - I had a vacation planned and I didn't realize it would be over a week before someone responded to my request for help on this forum. If I hear from you in the next few hours I will definitely follow your next instructions and submit the results, but after that I can only read your posts until the 18th, since I'll be on the road with my laptop and away from this computer.

Again, sorry about this - I hope we can still finish cleaning this computer. I will get right back on it as soon as I return on August 18th.

I'm back home where this computer is and ready to continue following your instructions. The last thing I did was to run the TDSSKiller. I attached the log in a previous post, but here it is again. Thanks again for waiting and let me know what you think I need to do next.